AnyDough
nyDough
Last updated: 19 May 2026

Privacy policy

This privacy policy explains how AnyDough collects, uses, stores and shares personal information when you use anydough.com, the AnyDough app, public recipe pages, embeds, account features, recipe tools, uploads, bake plans, shopping and affiliate surfaces, AI-assisted features, moderation workflows or related services.

It is written to reflect how the service currently works in practice, including account registration, recipe sharing, Baker levels, creation limits, Quests, linked recipe progress, badges, AI-assisted recipe and image features, machine translation, moderation, image uploads, analytics consent, native app integrations, embeds and account deletion.

This policy is intended to be clear product-facing information, not a substitute for legal advice. If you operate AnyDough commercially or rely on this policy for compliance, you should have it reviewed by qualified counsel.

Who we are

AnyDough is a recipe and baking platform where users can create, calculate, save, share, schedule, translate and publish dough and bread recipes.

If you have questions about this policy or want to exercise your privacy rights, you can contact us at hello@anydough.com.

What information we collect

The information we collect depends on how you use the service.

  • Account and profile information, such as your email address, display name, handle, handle history, avatar, locale, account state, roles, profile preferences and measurement preferences.

  • Authentication information from sign-in providers you choose to use, such as email sign-in, Google or Apple, together with identifiers, tokens or metadata needed to link and secure your account.

  • Recipes, drafts, preferments, dough data, ingredients, calculator values, recipe settings, recipe translations, bake plans, schedules, favourites, follows, shares, tags, moderation requests and other content you create or save through the service.

  • Baker level, quota and Quest information, such as quota tier, published recipe counts, draft and archive counts, recent creation activity, daily limit status, Quest attempts, step attachments, linked recipes, badge status and related progress indicators.

  • AI-related information, such as prompts, recipe keywords, source URLs, source extracts, draft recipe JSON, recipe names and descriptions, ingredient lists, generated or edited images, generated outputs, validation notes, model selections and usage or cost estimates where AI-assisted features are used.

  • Images and files you upload, including avatars and recipe images, plus related crop, variant, source, file, storage and delivery metadata needed to render them.

  • Technical and usage information, such as IP address, browser, app or device information, request metadata, pages visited, locale, referrer, event names, source surfaces, logs and security signals needed for reliability, analytics, moderation, fraud prevention and abuse prevention.

  • Cookie, local storage, session storage and consent preferences, including whether you have accepted or declined optional tracking and any anonymous or session identifiers created after tracking is allowed.

  • Native app integration information, such as platform, deep-link context, tracking permission state and push-notification permission state where the web app is running inside a native app.

  • Communications data when you contact us or when we send account, sign-in, security, moderation, publication or service-related emails.

How we use your information

  • To create, authenticate, secure and maintain your account.

  • To generate, reserve, update and protect handles and profile details.

  • To host, calculate, save, translate, display, moderate and publish recipes, bake plans, schedules, images and other user-generated content.

  • To calculate and display Baker levels, progress rings, quota tiers, usage limits, Quest progress, badges and related recognition features.

  • To process uploads, generate image variants, serve recipe and avatar media, and clean up unused files.

  • To provide AI-assisted features, such as recipe generation, instructions, draft building, image generation or editing, source extraction, validation, translation and related admin review tools.

  • To mark, review, validate or moderate AI-generated, user-generated and public content.

  • To operate core features such as favourites, follows, recipe sharing, embeds, public profiles, search, tags, schedules, shopping lists and affiliate links.

  • To send transactional emails such as sign-in links or codes, account notices, moderation notices and recipe publication updates.

  • To measure, protect and improve the service where you have consented to optional tracking or where privacy-safe aggregate tracking is permitted for public embeds.

  • To detect, investigate and prevent spam, fraud, scraping, account misuse, unsafe content, security incidents and abuse.

  • To comply with legal obligations, enforce agreements, resolve disputes, protect rights and respond to valid legal requests.

Our legal bases

Where UK GDPR, EU GDPR or similar laws apply, we generally rely on one or more of the following legal bases: performance of a contract with you, our legitimate interests in operating and securing the platform, your consent where required, and compliance with legal obligations.

For example, we rely on contract or legitimate interests for account operation, recipe tools, publication workflows, content moderation, security, service administration and support.

We rely on consent for optional tracking technologies where consent is required, and you can change that choice through the privacy settings control.

We may rely on legitimate interests or legal obligations to retain limited records for fraud prevention, rights protection, legal claims, account deletion records, moderation history and platform security.

Public content and profiles

If you publish a recipe, share a public link, copy an embed, use public profile features, earn Baker level progress, or receive public Quest recognition, some information becomes visible to other users and visitors. This can include your handle, profile page, published recipes, recipe images, recipe descriptions, AI-generated indicators where available, Baker level, profile/avatar level visuals, Quest badges, recipe metadata, public counts and related public links.

Public recipe pages may be included in sitemaps, structured data, search surfaces, embeds and previews. Third parties may cache, index, copy or reference public content outside AnyDough's control.

Draft recipes, private working data and unpublished moderation items are not intended to be publicly visible unless and until you publish them, submit them for review, or otherwise choose to make them public through the service.

Baker levels, Quests and badges

Baker levels, quota tiers, daily limits, draft and archive caps, profile progress rings, Quest attempts, Quest step attachments, linked recipes and badge status may be calculated from your account activity and content status.

Your Baker level and related visual indicators may be shown on your public profile, avatar, recipe listings, account surfaces or other areas of the service. Quest badges may be shown to you for privately completed learning paths, and may be shown publicly only when the related product surface supports public sharing.

Quest progress is based on recipes you link to Quest steps. Publication review still applies before a recipe can become public. If a linked recipe is archived, removed or stops qualifying for the Quest step, badge visibility may change.

AI-assisted features and machine translation

When AI-assisted features are available, we may send relevant prompts, recipe details, ingredient lists, source URLs, source extracts, images, draft JSON, validation notes, model settings and outputs to OpenAI or similar AI providers to provide the feature.

Published recipe titles and descriptions may also be translated by machine translation using an AI provider when automatic or admin-triggered translation is enabled.

AI providers may process this data under their own terms, privacy documentation and data-processing commitments. Provider policies and technical controls may change over time.

Do not include private, sensitive, confidential, health, financial, children's, government-id or third-party personal information in prompts, recipe notes, source extracts or images unless you have permission and understand how the feature works.

We may store AI-generated outputs, prompts, validation results, model choices, cost estimates and related activity events to provide the service, audit results, troubleshoot issues, moderate content, improve workflows and keep records of published recipes.

Recipe accuracy, health and safety information

AnyDough stores and displays recipe information, calculations, schedules and AI-assisted or user-generated content. This information may include allergens, ingredients, quantities, temperatures, timings, nutrition-style notes or safety-related instructions, but we do not treat it as professional medical, nutritional, food safety or catering advice.

You are responsible for checking recipe content, allergens, substitutions, dietary suitability, food handling, fermentation, cooking temperatures and equipment safety before using or serving a recipe.

Cookies, local storage and similar technologies

We use cookies, local storage, session storage and similar technologies for essential site functions and, where you consent, for analytics and tag-based tracking.

Essential technologies may be used for sign-in, security, localisation, session handling, route behaviour, remembering your cookie choice, native app integration and basic service operation.

Optional web tracking is controlled through our consent prompt. At the time of writing, Google Tag Manager is only initialised after consent, except where equivalent native-app tracking permissions apply.

After optional tracking is allowed, recipe-view tracking may use local and session identifiers so we can understand usage while throttling repeated view events.

When a public recipe is embedded on another site, we may count that the AnyDough embed link loaded even if you have not accepted optional tracking. This embed-load count does not include your account id, anonymous id, session id, or tracking cookie; it records the recipe, embed surface, time, locale, and referring site host where available so we can understand where public AnyDough recipe embeds are used.

Third-party services and processors

We use third-party providers to help operate the service. Depending on how you use AnyDough, these providers may process personal data on our behalf or under their own policies.

  • Authentication and account infrastructure, including Firebase / Firestore and the sign-in providers you choose, such as Google or Apple.

  • Database, hosting, storage, content delivery and infrastructure providers used to run the app and API.

  • AWS S3 and related infrastructure to store and deliver uploaded media files.

  • SMTP2GO or similar providers for transactional email delivery.

  • Google services for reCAPTCHA and, where consented, analytics or tag management.

  • OpenAI or similar AI providers for AI-assisted recipe, image, extraction, validation and translation features.

  • Marketplace and affiliate partners, such as Amazon or eBay surfaces, when you click ingredient or shopping links.

  • App platform, browser, operating-system or native WebView services where you use AnyDough through a native app or mobile device.

reCAPTCHA and abuse prevention

We use Google reCAPTCHA and related anti-abuse measures on certain authentication flows to protect the service from spam, automated abuse and fraud.

Use of reCAPTCHA is also subject to Google's Privacy Policy and Terms of Service.

We may also use logs, rate limits, moderation signals, account state, provider metadata and activity events to investigate misuse and protect the platform.

Affiliate links and third-party purchases

Some ingredient links may take you to third-party marketplaces or affiliate partners. If you click those links, the marketplace or partner may receive information from your browser or device, such as the page you came from, affiliate identifiers and other information governed by their own policies.

AnyDough does not process marketplace payments through the current app unless a separate checkout feature says otherwise.

How we share information

We do not sell your personal information. We may share personal information in the following situations:

  • With service providers who host, secure, analyse, deliver email, store files, provide AI services, provide authentication, or otherwise help us run the platform.

  • With other users or the public when you publish recipes, maintain a public profile, share a public link, copy an embed, or otherwise choose to make content public.

  • With moderators or administrators where needed to review content, investigate misuse, manage users, generate translations, review AI-assisted drafts, enforce platform rules or support the service.

  • With sign-in providers, app platforms, AI providers, storage providers, email providers, analytics providers, anti-abuse providers and marketplace partners as described in this policy.

  • Where required by law, regulation, court order, subpoena, valid legal process, government request or mandatory platform rule.

  • In connection with protecting rights, safety, fraud prevention, abuse investigations, security incidents, disputes, corporate transactions or platform integrity.

International transfers

Some of our providers may process personal data outside your country, including outside the UK or EEA. Where applicable, we aim to rely on appropriate safeguards such as contractual protections, adequacy decisions, standard contractual clauses, data-processing terms, or equivalent lawful transfer mechanisms.

How long we keep information

We keep personal information for as long as reasonably necessary to operate the service, provide requested features, comply with legal obligations, resolve disputes, enforce agreements, preserve public content integrity and protect the platform.

Different categories of data are retained for different periods. Account and content records may be retained while your account is active; published recipe data may remain longer if it has been made public; Quest progress, linked recipe records, quota records, logs, activity records and abuse-prevention records may be kept for security and operational purposes; email and moderation records may be retained where needed for support, compliance or disputes.

AI prompts, outputs, generated images, translations, validation records and related metadata may be kept where needed to provide the feature, preserve published content, audit admin actions, troubleshoot issues, moderate content or maintain recipe history.

Where we no longer need information, we aim to delete it, anonymise it, de-identify it or restrict it unless we are required or permitted to retain it.

Account deletion and retained public content

If you delete your account, we currently remove or disconnect account access, sessions, linked sign-in accounts, drafts, private recipes, schedules, follows, favourites, personal settings, user files, active private Quest working data and similar account-level data.

Published recipes may remain online and may be reassigned to a generic Deleted user profile so that public recipe links do not immediately break.

Your current and historical handles may remain reserved after account deletion to reduce impersonation risk and protect existing links.

We may retain limited records where reasonably needed for legal compliance, security, fraud prevention, moderation history, public content integrity, backups, dispute handling, audit logs or to prove that a deletion request was handled.

Your rights and choices

Depending on where you live, you may have rights to access, correct, delete, restrict or object to certain processing of your personal information, and in some cases to data portability, withdrawal of consent, or to complain to a supervisory authority.

You can control some information directly through your account, such as your profile details, handle, locale, measurement preferences, public content settings and cookie choices where available.

To exercise a privacy request, contact us at hello@anydough.com. We may need to verify your identity before acting on a request.

If you are in the UK, you may also have the right to complain to the Information Commissioner's Office. If you are elsewhere, you may have the right to complain to your local data protection authority.

Security

We use a combination of technical and organisational measures to protect personal information. However, no service can guarantee absolute security, and you use the internet and the service at your own risk.

You are responsible for keeping your login methods, email account, devices and any linked authentication providers secure.

If you believe your account or personal information has been compromised, contact us promptly.

Children

AnyDough is not intended for children who are below the age required in their country to consent to online services. If you believe a child has provided personal information to us inappropriately, please contact us.

Changes to this policy

We may update this privacy policy from time to time to reflect product, legal or operational changes. When we do, we will update the last updated date on this page.

If we make material changes, we may provide notice through the service, by email, or by other reasonable means.

Contact

If you have questions about this privacy policy or how AnyDough handles personal information, contact us at hello@anydough.com.